Skip to main content
Announcements
Have questions about Qlik Connect? Join us live on April 10th, at 11 AM ET: SIGN UP NOW

Does the Spring4Shell Vulnerability Impact Replicate or Enterprise Manager?

No ratings
cancel
Showing results for 
Search instead for 
Did you mean: 
Dana_Baldwin
Support
Support

Does the Spring4Shell Vulnerability Impact Replicate or Enterprise Manager?

Last Update:

May 20, 2022 2:47:01 AM

Updated By:

Sonja_Bauernfeind

Created date:

May 19, 2022 6:48:30 PM

Source, Bug Alert: Confirmed remote code execution (RCE) in Spring Core, an extremely popular Java framework Praetorian has confirmed that a remote code execution vulnerability exists in Spring, an extremely popular Java framework. The flaw has been assigned a bug alert severity of 'critical'.

https://bugalert.org/content/notices/2022-03-30-spring.html  

 

Environment

 

Resolution

Enterprise Manager and Replicate are not vulnerable, full details are at this link: Qlik’s Response to March 2022 Spring Framework Vulnerabilities.

Qlik Replicate contains libraries containing the affected code, but they are not used in an exploitable way. These will be removed in an upcoming patch.

Labels (1)
Version history
Last update:
‎2022-05-20 02:47 AM
Updated by: